COMODO SSL CERTIFICATES NOT AFFECTED BY MD5 FLAW

Jersey City, NJ, January 8, 2009 — Comodo CA Limited, the second-largest issuer of high-assurance digital certificates, today announced that none of its certificates is created using the MD5 hash function.

The MD-5 certificate algorithm has been known to be subject to potential compromise since 1996. Recently, a team of security researchers exploited a flaw in the MD-5 hash function, demonstrating the potential to generate bogus certificates that would be trusted by major web browsers. Though there have been no documented attacks arising from this, SSL users are advised to check with their respective certification authorities to determine if their certificates were issued using MD-5, and if so, consider replacing them with more secure alternatives..

Continual innovation, a core competence in PKI, and a commitment to reversing the growth of Internet-crime distinguish the Comodo companies as vital players in the Internet's ongoing development. Comodo secures and authenticates online transactions and communications for over 200,000 business customers and has over 10,000,000 installations of desktop security products.